Nutanix,Inc。很高兴地报告说,Coalfire Systems,Inc。(CoalFire)是一家付款卡行业合格的安全评估员(QSA)公司,已对基于软件的Nutanix®云平台的核心组件进行独立的技术评估,并找到that Nutanix solutions can be used by the customer to effectively provide support for PCI DSS payment entities’ objectives and requirements. This opinion applies to common scenarios such as merchant point-of-sale (POS) and many other payment card applications.
You can read thefull Coalfire opinion here。
为什么这很重要?运行零售PCI工作负载的公司必须选择基础架构,这些基础架构不仅提供出色的性能,可靠性,易用性和经济性,而且还有助于支持其保持合规和安全的能力。
卓越的客户体验通常是将最佳零售商与其他零售商(尤其是在Covid时代)区分开来的原因。大多数客户互动发生在网上,并且具有轻松,安全和直观的销售点不再是企业的可选。
People want personal online profiles that offer a convenient way to deal with recurring payments or quick checkouts with saved credit card information. Unfortunately, credit card fraud has gotten exponentially worse over the years and retailers have been hot targets for these cyber attacks.
客户必须确信零售商和在线服务提供商正在采取适当的措施,以保护其敏感的卡信息免受违规的影响。最近民意调查sponsored by Centrify Corporation found that about 65 percent of victims report “loss of trust” with an organization as a result of a breach. This can result in reduced business and losing customers to more trustworthy competitors.
Merchant-based vulnerabilities may appear almost anywhere in the card-processing ecosystem including:
- Point-of-Sale (POS) devices
- 移动设备,个人计算机或服务器
- 无线热点
- web shopping applications
- 基于纸张的存储系统
- transmission of cardholder data to service providers
- within remote access connections
漏洞还可以扩展到服务提供商和收购方经营的系统,这些系统是启动和维护与接受支付卡的商人的关系的金融机构。
为了解决这些问题,排名前五的支付卡公司JCB International,MasterCard,American Express,Discover Financial Services和Visa Inc.合并部队建立支付卡行业安全标准委员会(PCI SSC)。PCI SSC的使命是在保护客户和企业的同时管理付款处理。
使用PCI安全标准保护持卡人数据
PCI SSC established Payment Card Industry Data Security Standards (PCI DSS) to safeguard information. Compliance helps to alleviate vulnerabilities and protect cardholder data. These standards and security best practices must be adopted by the payment card brands for all entities that process, store, or transmit cardholder data and sensitive authentication data. Any business that transacts via credit card has a responsibility to ensure global payment account data security. Breaches do more than impact customers; they can have a big impact on a company's reputation.
Nutanix Enterprise Cloud for Retail
Nutanix, the recognized industry leader forhyperconverged infrastructure (HCI), provides a modern, cloud-like datacenter to power retail business transformation. Digitally enabled user experiences in retail require robust infrastructure, but with solutions that are easy, intelligent, resilient, and secure. Nutanix solutions support retailers and delight their end customers across channels and offer immersive personalized experiences in smart stores and ensure a connected digital supply chain.
Nutanix技术 - 一个很好的选择。
The Experts Weigh In.
Nutanix平台功能强大,灵活且可扩展到几乎所有环境。Coalfire- a trusted cybersecurity advisor - reviewed the Nutanix core software product for its efficacy in assisting payment card entities and PCI service providers with deployments that may be subject to assessment for the PCI DSS compliance. Coalfire assessed:
- Nutanix核心平台 - 用于虚拟化和Kubernetes的HCI,AHV和Karbon软件的AOS软件以及用于管理的Prism软件。
- Nutanix Flow software, which is network security built into AHV virtualization and managed through Prism Central.
- Calm software, which provides application automation and lifecycle management for the Nutanix public clouds as part of the Nutanix platform.
- Nutanix文件软件,一个扩展分布式文件存储解决方案支持服务器消息块(SMB)和Nutanix AOS顶部的网络文件系统(NFS)。
- Nutanix对象软件,一种扩展,分布式简单存储服务(S3)兼容对象存储解决方案,在Nutanix AOS顶部。
Coalfire opines that the reviewed Nutanix solution can be effective in providing significant and substantial support for PCI DSS payment entities’ objectives and requirements.
Through a feature review and technical deep dive, Coalfire was able to evaluate the architectural integrity and completeness of Nutanix to support most of the technical controls in 11 of the 12 PCI DSS requirements.
According to Coalfire, Nutanix solutions can be effective in providing significant and substantial support for PCI DSS payment entities’ objectives and requirements. This opinion applies to common scenarios such as merchant point-of-sale (POS) and many other payment card applications.
©2021 Nutanix,Inc。保留所有权利。Nutanix,Nutanix徽标以及此处提到的所有Nutanix产品和服务名称是美国和其他国家的Nutanix,Inc。的注册商标或商标。本文提到的其他品牌名称仅用于识别目的,可能是其各自持有人的商标。这篇文章可能包含指向不属于Nutanix.com一部分的外部网站的链接。Nutanix不控制这些站点,并对任何外部站点的内容或准确性不承担所有责任。这篇文章可能包含明确和暗示的前瞻性陈述,这些陈述不是历史事实,而是基于我们当前的期望,估计和信念。此类陈述的准确性涉及风险和不确定性,并取决于未来的事件,包括可能无法控制的事件,实际结果可能与此类陈述所预期或暗示的事件差异。本文所包含的任何前瞻性陈述仅在本文之日起说,除非法律要求,否则我们没有义务更新或以其他方式修改任何此类前瞻性陈述,以反映后续事件或情况。
来源: